$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QamQjSRh65PAD5qQUmiLAL97hm8.roa File: QamQjSRh65PAD5qQUmiLAL97hm8.roa (raw, json) Hash identifier: 6UaDzITi0UWMpqQ72teU21yEHhBU4U9kp0OGOItBuVs= Subject key identifier: 41:A9:90:8D:24:61:EB:93:C0:0F:9A:90:52:68:8B:00:BF:7B:86:6F Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0CC6 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QamQjSRh65PAD5qQUmiLAL97hm8.roa Signing time: Mon 26 Aug 2024 05:25:56 +0000 ROA not before: Mon 26 Aug 2024 05:25:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:cacb::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Aug 26 05:25:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=41A9908D2461EB93C00F9A9052688B00BF7B866F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dc:57:19:e5:79:56:3e:f0:b7:5b:2b:e2:6d: af:29:53:d9:4c:72:16:44:9e:4c:e3:33:8c:9a:12: 4e:8c:67:31:81:84:90:b8:da:31:96:9f:95:6a:a6: 8b:07:8b:e1:aa:3c:90:1d:07:b3:6f:da:98:0d:35: 35:cb:62:1b:12:00:81:69:5b:2b:14:2a:ad:69:f7: cf:f1:cf:69:db:74:2d:31:51:47:d2:50:b0:6f:e8: 1e:74:95:aa:69:ab:6c:8a:2c:8f:83:88:90:2f:57: 0e:96:92:5b:99:c3:56:21:f4:51:f4:13:89:de:0e: 36:55:d5:8e:21:c8:7a:96:34:11:6c:70:a1:d2:2b: fc:ee:29:30:43:e4:d7:c6:08:0c:f4:b5:21:b2:e1: 9b:6c:18:d3:1d:90:88:9e:3e:5c:59:b2:19:7e:9c: 0b:61:96:29:b9:c3:9d:1b:ff:a5:b8:54:e4:99:a4: 99:44:fe:f7:9b:83:5e:bc:35:7a:15:f0:e8:6c:b5: 6c:ef:a1:8f:ca:b8:d2:67:13:bb:7b:6e:f5:a1:bb: e0:18:3e:06:4a:22:60:8c:a7:8a:8a:97:23:41:66: 56:2e:b3:dc:fc:20:f4:d2:a1:0e:db:9b:d5:5e:a0: 67:80:79:cb:42:4c:dc:0e:83:6c:e6:a6:4a:73:3b: b4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A9:90:8D:24:61:EB:93:C0:0F:9A:90:52:68:8B:00:BF:7B:86:6F X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QamQjSRh65PAD5qQUmiLAL97hm8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:cacb::/48 Signature Algorithm: sha256WithRSAEncryption 27:ca:fa:17:7a:4c:b8:42:e0:d0:92:53:74:bc:bd:1e:52:df: 99:f9:33:f5:61:2c:f2:93:f1:02:8e:86:66:a6:75:32:73:1b: 93:ae:43:b5:bd:53:8d:61:8f:44:67:d2:64:55:75:80:67:75: a3:c1:4a:d0:d4:67:4c:09:72:01:70:ed:b3:0c:81:b7:88:cc: 62:c7:0a:22:e7:bb:26:5b:56:87:ce:57:a3:6c:a7:07:27:1d: a0:b8:b6:b7:8a:82:5a:e7:6c:1f:37:ef:6f:7c:53:a8:f0:e4: f4:9f:e3:28:13:ad:8e:02:d8:e6:e1:72:fd:8b:0a:12:5a:ba: 42:0a:ae:44:e1:1d:12:af:60:d4:53:9d:09:87:a2:96:16:65: 97:fb:c1:63:44:3d:cd:fd:6d:63:87:64:18:00:eb:18:77:0a: 25:50:16:7d:84:f3:8c:3e:7b:46:64:29:e2:cb:a9:d8:eb:2a: 45:16:74:76:91:47:07:3f:4a:33:93:5c:af:87:c6:8f:2d:51: 47:e4:23:6b:f3:6d:0c:49:34:1a:2b:50:72:79:b8:05:eb:a1: 59:bd:d0:03:33:fb:8d:23:b5:00:92:94:76:ad:06:4f:ea:98: 99:bf:bb:71:cc:22:0e:3a:66:59:88:49:ec:f6:fe:10:00:fe: 4c:8b:fa:ec -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw NTI1NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxQTk5MDhEMjQ2MUVC OTNDMDBGOUE5MDUyNjg4QjAwQkY3Qjg2NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP3FcZ5XlWPvC3Wyviba8pU9lMchZEnkzjM4yaEk6MZzGBhJC4 2jGWn5VqposHi+GqPJAdB7Nv2pgNNTXLYhsSAIFpWysUKq1p98/xz2nbdC0xUUfS ULBv6B50lappq2yKLI+DiJAvVw6WkluZw1Yh9FH0E4neDjZV1Y4hyHqWNBFscKHS K/zuKTBD5NfGCAz0tSGy4ZtsGNMdkIiePlxZshl+nAthlim5w50b/6W4VOSZpJlE /vebg168NXoV8OhstWzvoY/KuNJnE7t7bvWhu+AYPgZKImCMp4qKlyNBZlYus9z8 IPTSoQ7bm9VeoGeAectCTNwOg2zmpkpzO7Q9AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUQamQjSRh65PAD5qQUmiLAL97hm8wHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL1FhbVFqU1JoNjVQ QUQ1cVFVbWlMQUw5N2htOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAysswDQYJKoZIhvcNAQELBQADggEBACfK+hd6TLhC4NCSU3S8vR5S 35n5M/VhLPKT8QKOhmamdTJzG5OuQ7W9U41hj0Rn0mRVdYBndaPBStDUZ0wJcgFw 7bMMgbeIzGLHCiLnuyZbVofOV6NspwcnHaC4treKglrnbB837298U6jw5PSf4ygT rY4C2Obhcv2LChJaukIKrkThHRKvYNRTnQmHopYWZZf7wWNEPc39bWOHZBgA6xh3 CiVQFn2E84w+e0ZkKeLLqdjrKkUWdHaRRwc/SjOTXK+Hxo8tUUfkI2vzbQxJNBor UHJ5uAXroVm90AMz+40jtQCSlHatBk/qmJm/u3HMIg46ZlmISez2/hAA/kyL+uw= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org